Presentation is loading. Please wait.

Presentation is loading. Please wait.

SIM401. A. Datum Account Forest Trey Research Resource Forest Federation Trust Microsoft (Users) E-Company Store (Resource) Contoso(Users)Contoso(Users)Fabrikam(Resource)Fabrikam(Resource)

Published byLeona Beasley Modified over 8 years ago

Similar presentations

Presentation on theme: "SIM401. A. Datum Account Forest Trey Research Resource Forest Federation Trust Microsoft (Users) E-Company Store (Resource) Contoso(Users)Contoso(Users)Fabrikam(Resource)Fabrikam(Resource)"— Presentation transcript:

1 SIM401

2

3

4 A. Datum Account Forest Trey Research Resource Forest Federation Trust Microsoft (Users) E-Company Store (Resource) Contoso(Users)Contoso(Users)Fabrikam(Resource)Fabrikam(Resource)

5

6 Site1 Site2 MSIT.adfs.microsoft.com Extranet Corpnet Extranet Corpnet MSIT.adfs.microsoft.com

7 Site1 Site2 MSIT.adfs.microsoft.com Extranet Corpnet Extranet Corpnet MSIT.adfs.microsoft.com Federation Service (FS) Security Token Service (STS) Maps user attributes to claims Issues security tokens Manages federation trust policies, claim rules

8 Site1 Site2 MSIT.adfs.microsoft.com Extranet Corpnet Extranet Corpnet MSIT.adfs.microsoft.com Client proxy for token requests Provides UI for browser clients Forms based auth Home realm discovery Federation Service Proxy (FS-P)

9

10 Internet DMZ Intranet Geographic DNS Load Balanced

11 Internet DMZ Intranet

12 Site1 Site2 MSIT.adfs.microsoft.com Extranet Corpnet Extranet Corpnet MSIT.adfs.microsoft.com SQL server ADFS service configuration Trust and claims rule storage SAML artifact storage SQL Configuration Store

13

14 <policyStore connectionString="Data Source=SQL1.contoso.com; Initial Catalog=AdfsConfiguration; Integrated Security=True; Failover Partner= “SQL2.contoso.com" administrationUrl="net.tcp://localhost:1500/policy" />

15 PS C:\Windows\system32> get-ADFSProperties | %{$_.ArtifactDbConnection} Data Source=SQL1.contoso.com;Initial Catalog=AdfsArtifactStore;Integrated Security=True;Failover Partner=SQL2.contoso.com

16 A. Datum Account Forest Trey Research Resource Forest Federation Trust Microsoft (Users) E-Company Store (Resource) Contoso(Users)Contoso(Users)Fabrikam(Resource)Fabrikam(Resource)

17 A. Datum Account Forest Trey Research Resource Forest Contoso(Users)Contoso(Users)Fabrikam(Resource)Fabrikam(Resource) Accept Incoming Claims Authorize the Requestor Issue Outgoing Claims Accept Incoming Claims Authorize the Requestor Issue Outgoing Claims

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34 www.microsoft.com/teched Sessions On-Demand & CommunityMicrosoft Certification & Training Resources Resources for IT ProfessionalsResources for Developers www.microsoft.com/learning http://microsoft.com/technet http://microsoft.com/msdn http://northamerica.msteched.com Connect. Share. Discuss.

35

36 Scan the Tag to evaluate this session now on myTechEd Mobile

37

38

Download ppt "SIM401. A. Datum Account Forest Trey Research Resource Forest Federation Trust Microsoft (Users) E-Company Store (Resource) Contoso(Users)Contoso(Users)Fabrikam(Resource)Fabrikam(Resource)"

Similar presentations

WSV405. IPv6 Ready Logo Program www.ipv6ready.org.

WSV405. IPv6 Ready Logo Program
SIM403. Claims Provider Trust Relying Party x Relying Party Trust Claims Provider Trust Your ADFS STS Partner ADFS STS & IP Relying Party Trust Partner.

SIM403. Claims Provider Trust Relying Party x Relying Party Trust Claims Provider Trust Your ADFS STS Partner ADFS STS & IP Relying Party Trust Partner.
WSV304 Manual Deployment High cost Fully Automated Low cost.

WSV304 Manual Deployment High cost Fully Automated Low cost.
OSP303. demo Status Bar Notification.

OSP303. demo Status Bar Notification.
Implementing and Administering AD FS

Implementing and Administering AD FS
SIM344. 2 Separate solution install paths can be taken, stand alone and SCOM integrated. Both require core AVIcode web apps and DB’s.

SIM Separate solution install paths can be taken, stand alone and SCOM integrated. Both require core AVIcode web apps and DB’s.
DBI331. Cube Measure Group Measure Partition Cube Dimension Dimension Attribute Relationship Hierarchy Level Cube Attribute Cube Hierarchy Measure.

DBI331. Cube Measure Group Measure Partition Cube Dimension Dimension Attribute Relationship Hierarchy Level Cube Attribute Cube Hierarchy Measure.
Problem Statement AD DB App1 DB App2 AD App4 App6 AD App5 Intranet Extranet Cloud AD App3 DB SSO Separate Sign-in Separate Sign-in Separate Sign-in.

Problem Statement AD DB App1 DB App2 AD App4 App6 AD App5 Intranet Extranet Cloud AD App3 DB SSO Separate Sign-in Separate Sign-in Separate Sign-in.
DBI330. Use the SSRS Execution Log, capture SSAS trace Look for peak times Gather workload usage How many more users? Double estimate just in.

DBI330. Use the SSRS Execution Log, capture SSAS trace Look for peak times Gather workload usage How many more users? Double estimate just in.
DBI405. Agenda Reporting Services Scale Out Architecture Report Catalog Best Practices Scale Out Deployment Best Practices Performance Optimization.

DBI405. Agenda Reporting Services Scale Out Architecture Report Catalog Best Practices Scale Out Deployment Best Practices Performance Optimization.
SIM346. General information about the software application.

SIM346. General information about the software application.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
DEV207. SSDT Database Services Database Services Analysis Services Reporting Services Integration Services.

DEV207. SSDT Database Services Database Services Analysis Services Reporting Services Integration Services.
DEV314. Entity Data Model demo Entity Data Model.

DEV314. Entity Data Model demo Entity Data Model.
DEV202 Before I get started... …is too expensive. …is too complex. …requires a server.

DEV202 Before I get started... …is too expensive. …is too complex. …requires a server.
WSV314. MAP 5.5 Internet ExplorerWindows 7 Software Usage Tracking Heterogeneous Server & Database Inventory Windows Server 2008 R2 Hyper-V SQL Server.

WSV314. MAP 5.5 Internet ExplorerWindows 7 Software Usage Tracking Heterogeneous Server & Database Inventory Windows Server 2008 R2 Hyper-V SQL Server.
Troubleshooting Federation, AD FS 2.0, and More…

Troubleshooting Federation, AD FS 2.0, and More…
WCL309. Demo.

WCL309. Demo.
WCL315. Emulate IE9Emulate IE8Emulate IE7IE5IE7IE8IE9/Edge Standards Quirks IE 5.5 Quirks.

WCL315. Emulate IE9Emulate IE8Emulate IE7IE5IE7IE8IE9/Edge Standards Quirks IE 5.5 Quirks.
SIM329. Certificate Enrollment Without CEP/CES Certificate Authority Active Directory Client Workstations 3 4 1 2 LDAP RPC/DCOM.

SIM329. Certificate Enrollment Without CEP/CES Certificate Authority Active Directory Client Workstations LDAP RPC/DCOM.

Similar presentations

Ads by Google